Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/1-cwdTGcY4DsPdodoi9sDYBxyHIE.roa
File: 1-cwdTGcY4DsPdodoi9sDYBxyHIE.roa (raw, json)
Hash identifier: jAtHpAKkb2J3nbSUiHVmqBjHM7Nhmh6Aq2kSTTJmSnc=
Subject key identifier: F9:CC:1D:4C:67:18:E0:3B:0F:76:87:68:8B:DB:03:60:1C:72:1C:81
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 018C820072150F83F1E2B02D2F9BE16DE8BA
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/1-cwdTGcY4DsPdodoi9sDYBxyHIE.roa
Signing time: Tue 19 Dec 2023 12:15:16 +0000
ROA not before: Tue 19 Dec 2023 12:15:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215973
IP address blocks: 93.119.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:82:00:72:15:0f:83:f1:e2:b0:2d:2f:9b:e1:6d:e8:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Dec 19 12:15:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f9cc1d4c6718e03b0f7687688bdb03601c721c81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:d7:c9:21:4a:a1:a6:c8:f5:10:1d:6d:93:af:
cd:85:7c:fe:ca:f3:17:4a:3b:e4:82:7b:bb:ae:59:
9a:9f:60:cf:ec:e7:8a:fe:8d:e7:cd:f3:3a:2e:07:
bc:fb:7d:9f:d1:17:f7:78:97:dc:af:9b:7e:81:d3:
62:02:0a:b2:7e:d0:69:ab:5c:bd:0b:25:9a:23:49:
5c:dc:a3:9b:7a:84:b2:f2:68:3e:9a:b2:3a:1b:eb:
39:30:10:f6:8b:dd:8e:94:0b:97:55:91:97:61:64:
28:3b:f0:da:d4:79:4b:41:74:7a:9f:b2:f9:69:e5:
84:d4:29:28:eb:a0:3b:d7:7b:e7:d1:cf:7b:21:c0:
49:a0:ef:55:cb:42:98:5f:98:d7:41:ba:c3:57:b9:
b7:82:a9:88:69:ba:c5:fc:79:81:d9:b7:22:d1:6b:
e9:8b:23:73:00:0e:66:60:18:61:e0:c0:0c:88:27:
4d:d1:6a:e1:ee:7b:99:44:4d:06:8a:a7:43:f1:83:
f1:57:70:73:ea:b3:dc:81:7f:f3:32:c8:1d:e8:bb:
7b:79:48:9f:45:ce:db:aa:a4:3d:cb:62:04:c9:cf:
a1:67:8f:a1:ee:1b:34:07:11:5e:92:9b:0c:ef:64:
37:e5:30:69:30:42:eb:32:33:8c:88:41:e7:41:44:
de:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:CC:1D:4C:67:18:E0:3B:0F:76:87:68:8B:DB:03:60:1C:72:1C:81
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/1-cwdTGcY4DsPdodoi9sDYBxyHIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.119.171.0/24
Signature Algorithm: sha256WithRSAEncryption
59:8b:cd:7f:6a:1d:37:d3:1b:04:b5:76:79:bc:9d:a4:63:b2:
9d:a9:a4:0f:eb:3b:5b:02:e6:80:7d:a5:57:9b:68:31:f0:d2:
c0:27:b2:52:94:31:95:c8:9e:86:0f:d1:f1:fc:b2:45:95:92:
b8:a0:86:d8:a4:f7:14:c7:3d:cf:cb:dd:ce:aa:aa:d9:e8:d2:
c6:87:51:21:4d:70:44:0f:35:c0:a9:18:13:60:02:cf:2a:80:
c1:ff:d5:23:d1:f8:4a:5d:7b:c1:56:ba:25:05:ae:3e:d1:4a:
ff:38:f9:ba:ea:4e:44:af:74:23:8d:e8:cf:02:80:06:83:4f:
ac:8b:b1:ca:0a:5b:f9:fa:83:eb:42:84:a7:5a:12:5e:dc:c2:
93:d7:d2:c1:4d:a3:87:ce:8c:71:0c:a8:a5:34:3b:47:80:75:
37:37:06:6e:bf:30:64:41:1e:a9:8b:4a:66:cf:56:9f:6f:d8:
64:0d:22:41:fb:85:f2:08:db:7e:1f:7a:b5:5c:50:c5:35:c3:
d4:a9:e3:22:ec:e3:9c:ee:d4:68:e4:b7:08:9b:f3:1c:8c:19:
80:37:7f:1b:2c:82:a2:fa:93:3f:75:a5:f0:bc:38:64:6a:ce:
6e:d8:42:a6:c3:cd:04:6d:de:63:72:c9:84:9d:c0:7a:fc:e4:
b8:e4:91:c7
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYyCAHIVD4Px4rAtL5vhbei6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkZjEzMmRmMTNlNGJlNTNkODI1MGM4YzQ4NDIwMjY0ZWVm
NmMxNGMwHhcNMjMxMjE5MTIxNTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOWNjMWQ0YzY3MThlMDNiMGY3Njg3Njg4YmRiMDM2MDFjNzIxYzgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5NfJIUqhpsj1EB1tk6/NhXz+yvMX
Sjvkgnu7rlman2DP7OeK/o3nzfM6Lge8+32f0Rf3eJfcr5t+gdNiAgqyftBpq1y9
CyWaI0lc3KObeoSy8mg+mrI6G+s5MBD2i92OlAuXVZGXYWQoO/Da1HlLQXR6n7L5
aeWE1Cko66A713vn0c97IcBJoO9Vy0KYX5jXQbrDV7m3gqmIabrF/HmB2bci0Wvp
iyNzAA5mYBhh4MAMiCdN0Wrh7nuZRE0GiqdD8YPxV3Bz6rPcgX/zMsgd6Lt7eUif
Rc7bqqQ9y2IEyc+hZ4+h7hs0BxFekpsM72Q35TBpMELrMjOMiEHnQUTeewIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPnMHUxnGOA7D3aHaIvbA2AcchyBMB8GA1UdIwQY
MBaAFH3xMt8T5L5T2CUMjEhCAmTu9sFMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmZFeTN4UGt2bFBZSlF5TVNFSUNaTzcyd1V3LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS9jMzc0OTctNjM3Ni00NjFlLTkzYzYt
OTc3ODY3NGVkYzk3LzEvMS1jd2RUR2NZNERzUGRvZG9pOXNEWUJ4eUhJRS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYmUvYzM3NDk3LTYzNzYtNDYxZS05M2M2LTk3Nzg2NzRlZGM5
Ny8xL2ZmRXkzeFBrdmxQWUpReU1TRUlDWk83MndVdy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF13qzAN
BgkqhkiG9w0BAQsFAAOCAQEAWYvNf2odN9MbBLV2ebydpGOynamkD+s7WwLmgH2l
V5toMfDSwCeyUpQxlciehg/R8fyyRZWSuKCG2KT3FMc9z8vdzqqq2ejSxodRIU1w
RA81wKkYE2ACzyqAwf/VI9H4Sl17wVa6JQWuPtFK/zj5uupORK90I43ozwKABoNP
rIuxygpb+fqD60KEp1oSXtzCk9fSwU2jh86McQyopTQ7R4B1NzcGbr8wZEEeqYtK
Zs9Wn2/YZA0iQfuF8gjbfh96tVxQxTXD1KnjIuzjnO7UaOS3CJvzHIwZgDd/GyyC
ovqTP3Wl8Lw4ZGrObthCpsPNBG3eY3LJhJ3AevzkuOSRxw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:08 2025 by rpki-client